Описание
Security update for clone-master-clean-up
This update for clone-master-clean-up fixes the following issues:
- CVE-2021-32000: Fixed some potentially dangerous file system operations (bsc#1181050).
Bugfixes:
- Fixed failures to remove btrfs snapshots (bsc#1203651).
Список пакетов
SUSE Linux Enterprise Server 12 SP5
clone-master-clean-up-1.8-4.11.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
clone-master-clean-up-1.8-4.11.1
Ссылки
- Link for SUSE-SU-2022:3674-1
- E-Mail link for SUSE-SU-2022:3674-1
- SUSE Security Ratings
- SUSE Bug 1181050
- SUSE Bug 1203651
- SUSE CVE CVE-2021-32000 page
Описание
A UNIX Symbolic Link (Symlink) Following vulnerability in the clone-master-clean-up.sh script of clone-master-clean-up in SUSE Linux Enterprise Server 12 SP3, SUSE Linux Enterprise Server 15 SP1; openSUSE Factory allows local attackers to delete arbitrary files. This issue affects: SUSE Linux Enterprise Server 12 SP3 clone-master-clean-up version 1.6-4.6.1 and prior versions. SUSE Linux Enterprise Server 15 SP1 clone-master-clean-up version 1.6-3.9.1 and prior versions. openSUSE Factory clone-master-clean-up version 1.6-1.4 and prior versions.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:clone-master-clean-up-1.8-4.11.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5:clone-master-clean-up-1.8-4.11.1
Ссылки
- CVE-2021-32000
- SUSE Bug 1181050